$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: 5QtV1GmOsYnHrqkMwyXiltqCCOfgfgikglYqmV6cetc= Subject key identifier: 61:8A:4F:FC:02:BE:0A:67:DA:31:E0:F0:58:43:3F:9D:78:CE:AA:1B Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 09ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 09C3 Signing time: Thu 24 Apr 2025 19:53:54 +0000 Manifest this update: Thu 24 Apr 2025 19:53:54 +0000 Manifest next update: Thu 01 May 2025 19:53:54 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: w3Zj3QaZrXpJQAAP6+T3Vmgf3ZmuglonjmMzgMS2X2o=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2541 (0x9ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Apr 24 19:53:54 2025 GMT Not After : May 1 19:53:54 2025 GMT Subject: CN=680a96d2-acaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:65:13:57:b1:40:85:52:9d:ed:e2:ca:bc:2e: 02:b1:93:20:ee:e3:02:1d:61:33:2e:af:8f:97:2c: ca:70:89:5f:87:9b:b2:82:fd:1b:60:cd:eb:0f:13: 2f:ac:7f:d6:1e:c1:58:0b:f2:58:07:bc:75:78:6d: 79:1d:0d:aa:c6:6e:8d:e7:64:e8:09:a0:51:fe:cb: a4:45:7a:2e:51:27:46:ef:0b:54:fd:25:5b:d6:70: a9:c3:a3:cb:e2:e0:39:61:d4:5c:6c:3d:aa:93:b3: e7:83:50:31:56:62:2d:91:1b:c0:7b:a3:bb:c3:20: 8d:3f:25:be:0c:fe:42:f2:3b:cd:e1:55:5c:59:15: 73:91:93:b3:ce:7b:e5:ec:05:7a:46:f1:5b:1f:83: f1:ec:4b:2d:42:3f:b7:69:5c:1f:1f:a0:62:ba:e7: e7:ff:35:ce:12:38:f2:21:41:99:e3:3b:2b:4e:b8: 57:cc:94:c2:4a:fa:b9:bb:c5:e1:a2:c0:dc:a3:7e: 05:84:07:00:d7:52:c9:d3:f8:68:66:3c:29:b0:83: 80:0e:2b:71:9d:00:79:df:0d:40:8e:ec:3d:90:a5: 9e:81:3c:48:d5:6d:cc:f4:23:7e:e1:e9:9e:fd:66: 51:89:c3:fb:03:39:76:13:5b:1b:1b:ef:77:b4:4c: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8A:4F:FC:02:BE:0A:67:DA:31:E0:F0:58:43:3F:9D:78:CE:AA:1B X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:d6:35:9a:ba:9f:4c:d0:3a:cf:25:26:fd:5a:a0:ec:9e:f4: 5e:b4:a5:4c:f3:db:56:08:66:dc:7a:5f:b5:56:f9:cc:de:db: 6f:d1:4d:7a:94:35:0f:45:1d:b5:fe:cc:00:ce:52:4c:1a:ce: 6a:24:06:a0:88:62:9c:1f:b7:2b:f3:e6:9e:e5:b3:c9:4f:af: 9c:fc:bf:ed:50:14:01:48:bc:84:71:e7:c5:b8:cf:b7:ce:e8: cc:f1:b0:43:d0:83:55:bd:4d:b9:95:24:9d:6d:eb:9c:ad:f9: 86:a7:dc:8a:3b:94:77:94:c9:2b:ad:90:15:9b:cf:ee:3e:fa: bf:ab:f0:14:2b:d2:ce:60:6d:7a:10:7c:1e:1d:6a:ed:62:1d: 8c:45:79:40:fb:35:aa:35:db:bc:95:8a:26:c7:67:54:70:71: 8f:ba:53:84:d5:0d:ae:22:ad:a4:3f:8f:b1:4d:76:95:1d:c5: b3:80:cc:e5:bb:d0:ed:82:ba:13:fa:55:bc:62:94:db:35:fd: fd:30:46:31:a2:07:9c:f5:9d:00:d8:dd:b8:42:07:34:eb:44: ac:f5:d9:17:19:9b:6f:37:6f:60:94:95:57:04:fd:5e:ed:00: 53:8d:bf:43:77:76:03:35:61:61:f5:78:f4:65:1b:0d:de:cc: 26:f5:61:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUwNDI0MTk1MzU0WhcNMjUwNTAxMTk1MzU0WjAYMRYwFAYD VQQDEw02ODBhOTZkMi1hY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22UTV7FAhVKd7eLKvC4CsZMg7uMCHWEzLq+PlyzKcIlfh5uygv0bYM3rDxMv rH/WHsFYC/JYB7x1eG15HQ2qxm6N52ToCaBR/sukRXouUSdG7wtU/SVb1nCpw6PL 4uA5YdRcbD2qk7Png1AxVmItkRvAe6O7wyCNPyW+DP5C8jvN4VVcWRVzkZOzznvl 7AV6RvFbH4Px7EstQj+3aVwfH6Biuufn/zXOEjjyIUGZ4zsrTrhXzJTCSvq5u8Xh osDco34FhAcA11LJ0/hoZjwpsIOADitxnQB53w1Ajuw9kKWegTxI1W3M9CN+4eme /WZRicP7Azl2E1sbG+93tEwvhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGKT/wC vgpn2jHg8FhDP514zqobMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV1jWaup9M0DrPJSb9WqDsnvRetKVM89tWCGbcel+1VvnM3ttv0U16 lDUPRR21/swAzlJMGs5qJAagiGKcH7cr8+ae5bPJT6+c/L/tUBQBSLyEcefFuM+3 zujM8bBD0INVvU25lSSdbeucrfmGp9yKO5R3lMkrrZAVm8/uPvq/q/AUK9LOYG16 EHweHWrtYh2MRXlA+zWqNdu8lYomx2dUcHGPulOE1Q2uIq2kP4+xTXaVHcWzgMzl u9DtgroT+lW8YpTbNf39MEYxogec9Z0A2N24Qgc060Ss9dkXGZtvN29glJVXBP1e 7QBTjb9Dd3YDNWFh9Xj0ZRsN3swm9WGj -----END CERTIFICATE-----Generated at Sat Apr 26 15:09:01 2025 by rpki-client